Try our new research platform with insights from 80,000+ expert users
Darktrace Logo

Darktrace pros and cons

Vendor: Darktrace
4.1 out of 5
Badge Ranked 1
2,132 followers
Start review

Pros & Cons summary

Darktrace offers stable and reliable performance with meaningful AI-driven alerts that reduce noise and focus on real threats. The Antigena feature provides autonomous responses against attacks, while sophisticated detection capabilities preemptively identify threats. Despite providing comprehensive network visibility, Darktrace lacks endpoint monitoring and involves complex configuration, frequent false positives, limited third-party integration, and high pricing. These factors may impact accessibility and usage versatility for some organizations.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Darktrace provides meaningful and actionable alerts, reducing noise and requiring minimal human intervention to eliminate threats.
Antigena offers immediate and autonomous responses to threats, learning the environment to take proactive actions against abnormal activities.
Darktrace effectively identifies and alerts on malicious IP connections, ensuring comprehensive network activity visibility.
Darktrace's AI and machine learning capabilities enhance threat detection, allowing teams to focus on other tasks while providing detailed threat analysis.
Darktrace is highly stable and scalable, offering extensive coverage with minimal analyst involvement, ensuring seamless monitoring 24/7.

CONS

Darktrace could benefit from enhanced endpoint visibility, as it primarily operates on the network.
Automation and integration improvements could enhance its functionality and user experience.
Pricing and cost-effectiveness are significant concerns that could hinder accessibility.
There is a need for improved threat detection and prevention, especially in minimizing false positives.
Darktrace requires more effective collaboration with third-party platforms and local partners.
 

Darktrace Pros review quotes

VI
Dec 16, 2020
It is very easy to work with Darktrace once you know how it works and the type of permissions that you need to get related to the security over a network. The interface is awesome. I'm sure that you have seen Ironman, and you know Jarvis, the computer of Tony Stark. The interface of Darktrace is very similar, and you can see in 3D, like a hologram, the whole network, traffic, and all the traces inside the network. The interface is awesome, and it provides a lot of information. At least for us, it is very easy to handle this interface, get the reports, and do the interpretation of those reports. Darktrace also provides mobile monitoring. With an app on your mobile phone, you can view the information live, which is very useful for area directors and field engineers. Darktrace can be also correlated with any type of big data solution, such as Splunk.
Read full review
ADITYA KAUSHIK - PeerSpot reviewer
Aug 22, 2024
Darktrace provides better visibility into network risks, allowing you to take preemptive action against risky user behavior.
Read full review
OO
Aug 20, 2019
A simple, powerful AI solution that just does all the work for you when you turn it on.
Read full review
Buyer's Guide
Darktrace
April 2025
Free Report: Darktrace Reviews and More
Learn what your peers think about Darktrace. Get advice and tips from experienced pros sharing their opinions. Updated: April 2025.
DOWNLOAD NOW
849,686 professionals have used our research since 2012.
IA
Jul 7, 2021
I have found the most valuable features to be artificial intelligence for cybersecurity, advanced machine learning capabilities, enterprise Immune System, Antigena Network, and Antigena Email. The way the solution detects the threat over the network before it spreads is very good. It notifies you of what the threat is exactly doing and gives you all the details about the execution of that application that had created the threat over your network.
Read full review
Graham Peck - PeerSpot reviewer
Jan 26, 2020
Ability to see events and exactly what traffic or website the device had tried to connect to that raised the alert or issue.
Read full review
DaliaHassen - PeerSpot reviewer
Mar 14, 2023
The solution is outstanding from a monitoring perspective.
Read full review
MP
Jul 29, 2024
The autonomous response is also highly designed in Darktrace.
Read full review
reviewer1509096 - PeerSpot reviewer
Feb 24, 2021
In terms of features, the data or information they collect and unsupervised machine learning are very valuable. Its unsupervised machine learning has reduced our team's effort. Both Darktrace and Vectra work on unsupervised machine learning that learns the behavior or develops a profile on its own, which allows our security team to do some other tasks rather than spending time on Darktrace or Vectra. Because of unsupervised machine learning, its detection capability is quite good. Along with that, if we utilize the integration feature properly, the automated incident response capability of Darktrace is quite useful.
Read full review
reviewer1215816 - PeerSpot reviewer
Aug 27, 2020
AI analytics are built directly into the product.
Read full review
CD
Feb 27, 2023
t was pretty as far as the granularity of what you were getting out of it.
Read full review
Show 10 more reviews (out of 76)
 

Darktrace Cons review quotes

VI
Dec 16, 2020
It would be good if they can include some endpoint protection for remote workers. Nowadays, most people are working remotely. Therefore, they should include some type of sensors that can be installed on the endpoint in order to directly report the main usage and protect remotely. Phone protection will also be a great feature to add to Darktrace.
Read full review
ADITYA KAUSHIK - PeerSpot reviewer
Aug 22, 2024
Darktrace needs significant improvement in its notification capabilities.
Read full review
OO
Aug 20, 2019
It could build in integrations for some complementary products, but it has an assistant plugin so this is not really a big deal.
Read full review
Buyer's Guide
Darktrace
April 2025
Free Report: Darktrace Reviews and More
Learn what your peers think about Darktrace. Get advice and tips from experienced pros sharing their opinions. Updated: April 2025.
DOWNLOAD NOW
849,686 professionals have used our research since 2012.
IA
Jul 7, 2021
In an upcoming release, there could be more customizable playbooks or a library of playbooks to choose from.
Read full review
Graham Peck - PeerSpot reviewer
Jan 26, 2020
The product doesn't have an endpoint agent that can react to triggers set on the device,
Read full review
DaliaHassen - PeerSpot reviewer
Mar 14, 2023
Darktrace is a closed technology, meaning we know very little about how it works, including the architecture, which is significant. As a result, when we implement the system and find we're getting many false positives, we have minimal insight into why it's happening and what we can do to fix it. We don't know how the solution is configured, the criteria for threats to be determined, or the product's inner workings. We understand that they have to ensure privacy and their copyright, but we want to see some documentation or public research into the security Darktrace provides.
Read full review
MP
Jul 29, 2024
Darktrace should have more automation and integrations with other security monitoring tools.
Read full review
reviewer1509096 - PeerSpot reviewer
Feb 24, 2021
In terms of improvements, fine-tuning is the area where we have to spend some time because it works on unsupervised machine learning. It would be good if they can improve their algorithm or technical functionality to reduce the fine-tuning effort. They can also come up with something at the endpoint level. So far, Darktrace has been a network detection response (NDR) solution. It does not offer much at the endpoint level or on user-client devices or servers. There should be more visibility at the endpoint level. It would be good to have the detection and response at the endpoint level by Darktrace. It should also have integration with an agile environment so that we can have continuous development and continuous integration in the application development environment. This is currently not there. It should also have internet-facing platform visibility, which is currently missing. They also need to improve the reporting and management dashboards. Currently, these are not so easy for a non-technical person. All these features would make Darktrace much better, and they would also be helpful in selling more solutions.
Read full review
reviewer1215816 - PeerSpot reviewer
Aug 27, 2020
A reporting portal could be a great addition to help customize reports.
Read full review
CD
Feb 27, 2023
The price point for the product was too high for what our possible use case could be.
Read full review
Show 10 more reviews (out of 75)

Product Categories

Product Categories
Extended Detection and Response (XDR)
Email Security
Intrusion Detection and Prevention Software (IDPS)
Network Traffic Analysis (NTA)
Network Detection and Response (NDR)
AI-Powered Chatbots
Cloud Security Posture Management (CSPM)
Cloud-Native Application Protection Platforms (CNAPP)
Attack Surface Management (ASM)
AI-Powered Cybersecurity Platforms

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Darktrace Logo
CrowdStrike Falcon vs Darktrace
Wazuh vs Darktrace Logo
Wazuh vs Darktrace
SentinelOne Singularity Complete vs Darktrace Logo
SentinelOne Singularity Complete vs Darktrace
Cortex XDR by Palo Alto Networks vs Darktrace Logo
Cortex XDR by Palo Alto Networks vs Darktrace
IBM Security QRadar vs Darktrace Logo
IBM Security QRadar vs Darktrace
Trend Vision One vs Darktrace Logo
Trend Vision One vs Darktrace
Vectra AI vs Darktrace Logo
Vectra AI vs Darktrace
Rapid7 InsightIDR vs Darktrace Logo
Rapid7 InsightIDR vs Darktrace
Cynet vs Darktrace Logo
Cynet vs Darktrace
Trend Vision One - Cloud Security vs Darktrace Logo
Trend Vision One - Cloud Security vs Darktrace
Stellar Cyber Open XDR vs Darktrace Logo
Stellar Cyber Open XDR vs Darktrace
NetWitness NDR vs Darktrace Logo
NetWitness NDR vs Darktrace
Adlumin Cybersecurity vs Darktrace Logo
Adlumin Cybersecurity vs Darktrace
Fidelis Elevate vs Darktrace Logo
Fidelis Elevate vs Darktrace
LogRhythm UEBA vs Darktrace Logo
LogRhythm UEBA vs Darktrace
See all alternatives

Product Categories

Product Categories
Extended Detection and Response (XDR)
Email Security
Intrusion Detection and Prevention Software (IDPS)
Network Traffic Analysis (NTA)
Network Detection and Response (NDR)
AI-Powered Chatbots
Cloud Security Posture Management (CSPM)
Cloud-Native Application Protection Platforms (CNAPP)
Attack Surface Management (ASM)
AI-Powered Cybersecurity Platforms

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Darktrace Logo
CrowdStrike Falcon vs Darktrace
Wazuh vs Darktrace Logo
Wazuh vs Darktrace
SentinelOne Singularity Complete vs Darktrace Logo
SentinelOne Singularity Complete vs Darktrace
Cortex XDR by Palo Alto Networks vs Darktrace Logo
Cortex XDR by Palo Alto Networks vs Darktrace
IBM Security QRadar vs Darktrace Logo
IBM Security QRadar vs Darktrace
Trend Vision One vs Darktrace Logo
Trend Vision One vs Darktrace
Vectra AI vs Darktrace Logo
Vectra AI vs Darktrace
Rapid7 InsightIDR vs Darktrace Logo
Rapid7 InsightIDR vs Darktrace
Cynet vs Darktrace Logo
Cynet vs Darktrace
Trend Vision One - Cloud Security vs Darktrace Logo
Trend Vision One - Cloud Security vs Darktrace
Stellar Cyber Open XDR vs Darktrace Logo
Stellar Cyber Open XDR vs Darktrace
NetWitness NDR vs Darktrace Logo
NetWitness NDR vs Darktrace
Adlumin Cybersecurity vs Darktrace Logo
Adlumin Cybersecurity vs Darktrace
Fidelis Elevate vs Darktrace Logo
Fidelis Elevate vs Darktrace
LogRhythm UEBA vs Darktrace Logo
LogRhythm UEBA vs Darktrace
See all alternatives
Related questions
  • 34
I'm building a next-gen AI powered threat intelligence platform. What's missing from existing solutions?
  • 545
Which is better - SentinelOne or Darktrace?
  • 362
What are the pros and cons of Darktrace vs CrowdStrike Falcon vs alternative EPP solutions?
  • 114
Which alternative solutions (other than Darktrace) do you recommend for an SMB?
  • 104
How does Crowdstrike Falcon compare with Darktrace?
  • 78
What is the best EDR or XDR product for a company with 9000 employees?
  • 11
When evaluating Extended Detection and Response (XDR), what aspect do you think is the most important to look for?
  • 350
How do you decide about the alert severity in your Security Operations Center (SOC)?
  • 123
Which is better for Endpoint Security: EDR or XDR solutions?
  • 213
What are the main differences between XDR and SIEM?